Privacy Policy – Pose Daddy

Last Updated: February 24, 2026

Your privacy is critically important to us. At Pose Daddy, we follow these core principles:

• We collect only the minimal personal information necessary to operate the Service.
• We store personal information only as long as we have a legitimate reason or legal obligation to keep it.
• We aim for full transparency about how we collect, use, and share your information.
• We do not sell, rent, or monetize your personal data.
• We collect and process data only on lawful grounds (e.g., contract performance, legitimate interests, consent where required).

This Privacy Policy explains how we (“we”, “us”, “Pose Daddy”, or the “Owner”) collect, use, disclose, and protect your personal information when you use the Pose Daddy Telegram bot (“Bot” or “Service”).

Who We Are:

• Pose Daddy (a proprietor incorporated in Cyprus; email: hello@posedaddy.com).

The Service is a private Telegram bot that allows users to generate AI images and short videos of fictional content using third-party APIs (primarily Leonardo AI and WaveSpeed AI). All generations are intended strictly for fictional content using reference images you own.

The Service does not support real-person content, non-consensual imagery, or any unlawful use.

This Policy applies to personal information we collect when you:

• Interact with the Telegram Bot (@posedaddy_bot or similar).
• Use our website (posedaddy.com).
• Provide information during setup (e.g., API keys, references).

It does not apply to:

• Third-party services (Leonardo AI, WaveSpeed AI, Telegram) — review their policies separately. We are not responsible for their data practices, quality, refunds, or security.
• Any content generated or shared by you — you are solely responsible for compliance with laws and third-party terms.

Information We Collect

1. Information You Provide Directly
   • Telegram profile basics (user ID, username, first/last name if visible, language code) when you start interacting with the Bot.
   • Leonardo AI and WaveSpeed AI API keys (encrypted in our database).
   • Uploaded reference images and returned generations (processed transiently for generation).
   • Custom prompts or instructions during generation.
   • Any messages/support communications you send us (e.g., via @PoseDaddysupport_bot).
2. Information Collected Automatically
   • Log data: IP address, device type, OS, browser/language, access times, Telegram client version.
   • Usage data: Actions performed (e.g., /setup, /setrefs, generations requested), timestamps, success/failure status (no content of prompts/outputs stored long-term).
   • Cookies/technical data (minimal; only if you visit our website).
3. Information We Do Not Collect
   • Full payment card details (handled solely by payment processors).
   • Sensitive data under GDPR Art. 9 (e.g., racial/ethnic origin, health, sexual orientation) unless strictly required by law (e.g., court order).
   • Generated images/videos long-term (transient processing only; no long-term storage of outputs).

How and Why We Use Your Information (and Legal Bases)

Purpose	Data Used	Legal Basis (GDPR/UK GDPR)
Provide and operate the Service (setup, generations, key storage)	Telegram ID, API keys, refs, prompts	Performance of contract (Art. 6(1)(b))
Secure the Service, prevent abuse, enforce ToS (e.g., fictional-use checks)	Logs, usage patterns, refs	Legitimate interests (Art. 6(1)(f))
Improve Service (analytics, bug fixes)	Anonymized usage stats	Legitimate interests (Art. 6(1)(f))
Communicate support/responses	Messages, Telegram ID	Performance of contract / Legitimate interests
Comply with law (e.g., court orders, abuse reports)	All relevant data	Legal obligation (Art. 6(1)(c))

We minimize data collection and do not use your data for training third-party AI models or advertising.

We share data only in limited cases:

• With Leonardo AI / WaveSpeed AI (only the API keys and prompts/refs you explicitly submit for generation).
• With Telegram (normal bot interaction data).
• Service providers (hosting, encrypted DB storage) under strict contracts.
• If required by law, court order, or to protect rights/safety (e.g., reporting CSAM or NCII abuse).
• In business transfers (merger/sale) — successor bound by this Policy.

We do not sell your data. Aggregated/anonymized stats may be shared publicly (no personal identifiers).

International Transfers
Data may be processed in the US, Cyprus, or other countries. We use EU-approved safeguards (e.g., Standard Contractual Clauses) where required.

Retention
We keep data only as long as necessary:

• API keys/refs: Until you delete them or terminate use.
• Logs: Up to 12 months (security/audit).
• Support messages: Up to 24 months. We delete sooner if no longer needed or upon valid request.

Your Rights (Especially EU/UK) Under GDPR/UK GDPR you have:

• Right to access, rectify, erase (“right to be forgotten”), restrict processing.
• Right to object (e.g., to legitimate-interest processing).
• Right to data portability.
• Right to withdraw consent (if consent-based).
• Right to lodge a complaint with a supervisory authority (e.g., Cyprus Commissioner or ICO UK).

To exercise rights, contact us at hello@posedaddy.com. We may verify identity first. Response within one month (extendable if complex).

Security
We use encryption (API keys at rest/transit), access controls, and monitoring to protect data. No system is 100% secure — use strong Telegram security (2FA).

Children
The Service is 18+ only. We do not knowingly collect data from children under 16. Any suspected child-related content triggers immediate deletion and reporting.

Changes to This Policy
We may update this Policy. Changes will be posted here and (for material changes) notified via Bot message. Continued use after changes means acceptance.

Contact Us For privacy questions:

• Rest of world: Pose Daddy, hello@posedaddy.com

Thank you for trusting us with your privacy.
PoseDaddy Team